OpenVPN inital connection works. Trying to reconnect not - Reboot fixes



  • Hi.

    So I followed this video: https://www.youtube.com/watch?v=xiy52Hn5bTc

    I had this running on my old network. It's used for me to get access to my work network from home.

    So, I recently switched ISP both at home and work to the same new one.

    I setup PFsense and OpenVPN.

    When I boot my PC, I can connect. However, after disconnecting and then trying to reconnect nothing happends.
    These are the logs:

    Tue Dec 12 21:31:17 2017 Initialization Sequence Completed With Errors ( see http://openvpn.net/faq.html#dhcpclientserv )
    Tue Dec 12 21:34:47 2017 Warning: route gateway is not reachable on any active network adapters: 172.16.0.1
    Tue Dec 12 21:34:47 2017 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
    Tue Dec 12 21:34:47 2017 Warning: route gateway is not reachable on any active network adapters: 172.16.0.1
    Tue Dec 12 21:34:47 2017 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
    Tue Dec 12 21:34:47 2017 NOTE: Release of DHCP-assigned IP address lease on TAP-Windows adapter failed: An address has not yet been associated with the network endpoint.  (code=1228)
    Tue Dec 12 21:34:47 2017 SIGHUP[hard,] received, process restarting
    Tue Dec 12 21:34:47 2017 OpenVPN 2.4.4 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Sep 26 2017
    Tue Dec 12 21:34:47 2017 Windows version 6.2 (Windows 8 or greater) 64bit
    Tue Dec 12 21:34:47 2017 library versions: OpenSSL 1.0.2l  25 May 2017, LZO 2.10
    Tue Dec 12 21:34:52 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]xx.xxx.xxx.xx:1194
    Tue Dec 12 21:34:52 2017 UDP link local (bound): [AF_INET][undef]:1194
    Tue Dec 12 21:34:52 2017 UDP link remote: [AF_INET]xx.xxx.xxx.xx:1194
    Tue Dec 12 21:34:52 2017 [www.safesurf.dk] Peer Connection Initiated with [AF_INET]xx.xxx.xxx.xx:1194
    Tue Dec 12 21:34:53 2017 open_tun
    Tue Dec 12 21:34:53 2017 TAP-WIN32 device [Ethernet 3] opened: \.\Global{734D00E0-401D-46F7-B1E7-420E4AB1DF67}.tap
    Tue Dec 12 21:34:53 2017 Set TAP-Windows TUN subnet mode network/local/netmask = 172.16.0.0/172.16.0.2/255.255.255.0 [SUCCEEDED]
    Tue Dec 12 21:34:53 2017 Notified TAP-Windows driver to set a DHCP IP/netmask of 172.16.0.2/255.255.255.0 on interface {734D00E0-401D-46F7-B1E7-420E4AB1DF67} [DHCP-serv: 172.16.0.254, lease-time: 31536000]
    Tue Dec 12 21:34:53 2017 Successful ARP Flush on interface [12] {734D00E0-401D-46F7-B1E7-420E4AB1DF67}
    Tue Dec 12 21:34:53 2017 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
    Tue Dec 12 21:35:28 2017 Warning: route gateway is not reachable on any active network adapters: 172.16.0.1
    Tue Dec 12 21:35:28 2017 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
    Tue Dec 12 21:35:28 2017 Warning: route gateway is not reachable on any active network adapters: 172.16.0.1
    Tue Dec 12 21:35:28 2017 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
    SYSTEM ROUTING TABLE
    0.0.0.0 0.0.0.0 10.0.0.1 p=0 i=37 t=4 pr=3 a=4252 h=0 m=25/0/0/0/0
    0.0.0.0 0.0.0.0 25.0.0.1 p=0 i=6 t=4 pr=3 a=2213 h=0 m=9256/0/0/0/0
    0.0.0.0 128.0.0.0 172.16.0.1 p=0 i=37 t=4 pr=3 a=0 h=0 m=26/0/0/0/0
    10.0.0.0 255.255.255.0 10.0.0.17 p=0 i=37 t=3 pr=2 a=4252 h=0 m=281/0/0/0/0
    10.0.0.17 255.255.255.255 10.0.0.17 p=0 i=37 t=3 pr=2 a=4252 h=0 m=281/0/0/0/0
    10.0.0.255 255.255.255.255 10.0.0.17 p=0 i=37 t=3 pr=2 a=4252 h=0 m=281/0/0/0/0
    25.0.0.0 255.0.0.0 25.68.1.73 p=0 i=6 t=3 pr=2 a=2212 h=0 m=9256/0/0/0/0
    25.68.1.73 255.255.255.255 25.68.1.73 p=0 i=6 t=3 pr=2 a=2212 h=0 m=9256/0/0/0/0
    25.255.255.255 255.255.255.255 25.68.1.73 p=0 i=6 t=3 pr=2 a=2212 h=0 m=9256/0/0/0/0
    xx.xxx.xxx.xx 255.255.255.255 10.0.0.1 p=0 i=37 t=4 pr=3 a=0 h=0 m=25/0/0/0/0
    127.0.0.0 255.0.0.0 127.0.0.1 p=0 i=1 t=3 pr=2 a=4271 h=0 m=331/0/0/0/0
    127.0.0.1 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=2 a=4271 h=0 m=331/0/0/0/0
    127.255.255.255 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=2 a=4271 h=0 m=331/0/0/0/0
    128.0.0.0 128.0.0.0 172.16.0.1 p=0 i=37 t=4 pr=3 a=0 h=0 m=26/0/0/0/0
    169.254.0.0 255.255.0.0 169.254.225.200 p=0 i=12 t=3 pr=2 a=281 h=0 m=291/0/0/0/0
    169.254.225.200 255.255.255.255 169.254.225.200 p=0 i=12 t=3 pr=2 a=281 h=0 m=291/0/0/0/0
    169.254.255.255 255.255.255.255 169.254.225.200 p=0 i=12 t=3 pr=2 a=281 h=0 m=291/0/0/0/0
    224.0.0.0 240.0.0.0 127.0.0.1 p=0 i=1 t=3 pr=2 a=4271 h=0 m=331/0/0/0/0
    224.0.0.0 240.0.0.0 10.0.0.17 p=0 i=37 t=3 pr=2 a=4259 h=0 m=281/0/0/0/0
    224.0.0.0 240.0.0.0 25.68.1.73 p=0 i=6 t=3 pr=2 a=2213 h=0 m=9256/0/0/0/0
    224.0.0.0 240.0.0.0 169.254.225.200 p=0 i=12 t=3 pr=2 a=378 h=0 m=291/0/0/0/0
    255.255.255.255 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=2 a=4271 h=0 m=331/0/0/0/0
    255.255.255.255 255.255.255.255 10.0.0.17 p=0 i=37 t=3 pr=2 a=4259 h=0 m=281/0/0/0/0
    255.255.255.255 255.255.255.255 25.68.1.73 p=0 i=6 t=3 pr=2 a=2213 h=0 m=9256/0/0/0/0
    255.255.255.255 255.255.255.255 169.254.225.200 p=0 i=12 t=3 pr=2 a=378 h=0 m=291/0/0/0/0
    SYSTEM ADAPTER LIST
    Intel(R) 82579V Gigabit Network Connection
      Index = 37
      GUID = {EEFB3D55-B31A-4562-8806-BC209AC7BA0B}
      IP = 10.0.0.17/255.255.255.0
      MAC = 30:85:a9:b2:0f:c9
      GATEWAY = 10.0.0.1/255.255.255.255
      DHCP SERV = 10.0.0.1/255.255.255.255
      DHCP LEASE OBTAINED = Tue Dec 12 17:26:49 2017
      DHCP LEASE EXPIRES  = Wed Dec 13 17:26:49 2017
      DNS SERV = 10.0.0.1/255.255.255.255
    LogMeIn Hamachi Virtual Ethernet Adapter
      Index = 6
      GUID = {35D2D616-5D13-422C-B8CC-0FC2AF19B0B2}
      IP = 25.68.1.73/255.0.0.0
      MAC = 7a:79:19:44:01:49
      GATEWAY = 25.0.0.1/255.255.255.255
      DHCP SERV = 25.0.0.1/255.255.255.255
      DHCP LEASE OBTAINED = Tue Dec 12 18:00:49 2017
      DHCP LEASE EXPIRES  = Wed Dec 12 18:00:49 2018
      DNS SERV = 
    TAP-Windows Adapter V9
      Index = 12
      GUID = {734D00E0-401D-46F7-B1E7-420E4AB1DF67}
      IP = 169.254.225.200/255.255.0.0
      MAC = 00:ff:73:4d:00:e0
      GATEWAY = 0.0.0.0/255.255.255.255
      DHCP SERV = 0.0.0.0/255.255.255.255
      DHCP LEASE OBTAINED = Tue Dec 12 21:35:28 2017
      DHCP LEASE EXPIRES  = Tue Dec 12 21:35:28 2017
      DNS SERV = 
    The Broadcom 802.11 Network Adapter provides wireless local area networking.
      Index = 7
      GUID = {3DA5EF78-91FA-4975-80D1-6A36270A3755}
      IP = 0.0.0.0/0.0.0.0
      MAC = dc:85:de:57:16:90
      GATEWAY = 0.0.0.0/255.255.255.255
      DHCP SERV = 
      DHCP LEASE OBTAINED = Tue Dec 12 21:35:28 2017
      DHCP LEASE EXPIRES  = Tue Dec 12 21:35:28 2017
      DNS SERV = 
    Microsoft Hosted Network Virtual Adapter
      Index = 14
      GUID = {5CF15D9A-01CB-491A-8ACB-1DBE80F45FAB}
      IP = 0.0.0.0/0.0.0.0
      MAC = dc:85:de:57:16:90
      GATEWAY = 0.0.0.0/255.255.255.255
      DHCP SERV = 
      DHCP LEASE OBTAINED = Tue Dec 12 21:35:28 2017
      DHCP LEASE EXPIRES  = Tue Dec 12 21:35:28 2017
      DNS SERV = 
    Microsoft Wi-Fi Direct Virtual Adapter
      Index = 26
      GUID = {C5DC4ADC-C746-4A0D-98D1-0F604C1DD5F3}
      IP = 0.0.0.0/0.0.0.0
      MAC = de:85:de:57:16:90
      GATEWAY = 0.0.0.0/255.255.255.255
      DHCP SERV = 
      DHCP LEASE OBTAINED = Tue Dec 12 21:35:28 2017
      DHCP LEASE EXPIRES  = Tue Dec 12 21:35:28 2017
      DNS SERV = 
    Tue Dec 12 21:35:28 2017 Initialization Sequence Completed With Errors ( see http://openvpn.net/faq.html#dhcpclientserv )

    I had this working on my old setup just fine. But now it only works first time.

    These are the configs:
    http://prntscr.com/hmnk7h
    http://prntscr.com/hmnkdi
    http://prntscr.com/hmnkmp
    http://prntscr.com/hmnkqe

    So when the openVPN client is just yellow, I see this in pfsense:
    http://prntscr.com/hmnmlb

    So it has established some kind of connection. However, I cannot ping PFsense nor anything else.

    I would be so happy if someone would lead me a way. I read a other post about this saying something about IP's, but I am unsure what should be wrong here….

    Rules on WAN: http://prntscr.com/hmnn8d

    The OpenVPN rule is also added.



  • @kaas:

    Hi.

    So I followed this video: https://www.youtube.com/watch?v=xiy52Hn5bTc

    I had this running on my old network. It's used for me to get access to my work network from home.

    So, I recently switched ISP both at home and work to the same new one.

    I setup PFsense and OpenVPN.

    When I boot my PC, I can connect. However, after disconnecting and then trying to reconnect nothing happends.
    These are the logs:

    Tue Dec 12 21:31:17 2017 Initialization Sequence Completed With Errors ( see http://openvpn.net/faq.html#dhcpclientserv )
    Tue Dec 12 21:34:47 2017 Warning: route gateway is not reachable on any active network adapters: 172.16.0.1
    Tue Dec 12 21:34:47 2017 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
    Tue Dec 12 21:34:47 2017 Warning: route gateway is not reachable on any active network adapters: 172.16.0.1
    Tue Dec 12 21:34:47 2017 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
    Tue Dec 12 21:34:47 2017 NOTE: Release of DHCP-assigned IP address lease on TAP-Windows adapter failed: An address has not yet been associated with the network endpoint.  (code=1228)
    Tue Dec 12 21:34:47 2017 SIGHUP[hard,] received, process restarting
    Tue Dec 12 21:34:47 2017 OpenVPN 2.4.4 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Sep 26 2017
    Tue Dec 12 21:34:47 2017 Windows version 6.2 (Windows 8 or greater) 64bit
    Tue Dec 12 21:34:47 2017 library versions: OpenSSL 1.0.2l  25 May 2017, LZO 2.10
    Tue Dec 12 21:34:52 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]xx.xxx.xxx.xx:1194
    Tue Dec 12 21:34:52 2017 UDP link local (bound): [AF_INET][undef]:1194
    Tue Dec 12 21:34:52 2017 UDP link remote: [AF_INET]xx.xxx.xxx.xx:1194
    Tue Dec 12 21:34:52 2017 [www.safesurf.dk] Peer Connection Initiated with [AF_INET]xx.xxx.xxx.xx:1194
    Tue Dec 12 21:34:53 2017 open_tun
    Tue Dec 12 21:34:53 2017 TAP-WIN32 device [Ethernet 3] opened: \.\Global{734D00E0-401D-46F7-B1E7-420E4AB1DF67}.tap
    Tue Dec 12 21:34:53 2017 Set TAP-Windows TUN subnet mode network/local/netmask = 172.16.0.0/172.16.0.2/255.255.255.0 [SUCCEEDED]
    Tue Dec 12 21:34:53 2017 Notified TAP-Windows driver to set a DHCP IP/netmask of 172.16.0.2/255.255.255.0 on interface {734D00E0-401D-46F7-B1E7-420E4AB1DF67} [DHCP-serv: 172.16.0.254, lease-time: 31536000]
    Tue Dec 12 21:34:53 2017 Successful ARP Flush on interface [12] {734D00E0-401D-46F7-B1E7-420E4AB1DF67}
    Tue Dec 12 21:34:53 2017 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
    Tue Dec 12 21:35:28 2017 Warning: route gateway is not reachable on any active network adapters: 172.16.0.1
    Tue Dec 12 21:35:28 2017 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
    Tue Dec 12 21:35:28 2017 Warning: route gateway is not reachable on any active network adapters: 172.16.0.1
    Tue Dec 12 21:35:28 2017 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
    SYSTEM ROUTING TABLE
    0.0.0.0 0.0.0.0 10.0.0.1 p=0 i=37 t=4 pr=3 a=4252 h=0 m=25/0/0/0/0
    0.0.0.0 0.0.0.0 25.0.0.1 p=0 i=6 t=4 pr=3 a=2213 h=0 m=9256/0/0/0/0
    0.0.0.0 128.0.0.0 172.16.0.1 p=0 i=37 t=4 pr=3 a=0 h=0 m=26/0/0/0/0
    10.0.0.0 255.255.255.0 10.0.0.17 p=0 i=37 t=3 pr=2 a=4252 h=0 m=281/0/0/0/0
    10.0.0.17 255.255.255.255 10.0.0.17 p=0 i=37 t=3 pr=2 a=4252 h=0 m=281/0/0/0/0
    10.0.0.255 255.255.255.255 10.0.0.17 p=0 i=37 t=3 pr=2 a=4252 h=0 m=281/0/0/0/0
    25.0.0.0 255.0.0.0 25.68.1.73 p=0 i=6 t=3 pr=2 a=2212 h=0 m=9256/0/0/0/0
    25.68.1.73 255.255.255.255 25.68.1.73 p=0 i=6 t=3 pr=2 a=2212 h=0 m=9256/0/0/0/0
    25.255.255.255 255.255.255.255 25.68.1.73 p=0 i=6 t=3 pr=2 a=2212 h=0 m=9256/0/0/0/0
    xx.xxx.xxx.xx 255.255.255.255 10.0.0.1 p=0 i=37 t=4 pr=3 a=0 h=0 m=25/0/0/0/0
    127.0.0.0 255.0.0.0 127.0.0.1 p=0 i=1 t=3 pr=2 a=4271 h=0 m=331/0/0/0/0
    127.0.0.1 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=2 a=4271 h=0 m=331/0/0/0/0
    127.255.255.255 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=2 a=4271 h=0 m=331/0/0/0/0
    128.0.0.0 128.0.0.0 172.16.0.1 p=0 i=37 t=4 pr=3 a=0 h=0 m=26/0/0/0/0
    169.254.0.0 255.255.0.0 169.254.225.200 p=0 i=12 t=3 pr=2 a=281 h=0 m=291/0/0/0/0
    169.254.225.200 255.255.255.255 169.254.225.200 p=0 i=12 t=3 pr=2 a=281 h=0 m=291/0/0/0/0
    169.254.255.255 255.255.255.255 169.254.225.200 p=0 i=12 t=3 pr=2 a=281 h=0 m=291/0/0/0/0
    224.0.0.0 240.0.0.0 127.0.0.1 p=0 i=1 t=3 pr=2 a=4271 h=0 m=331/0/0/0/0
    224.0.0.0 240.0.0.0 10.0.0.17 p=0 i=37 t=3 pr=2 a=4259 h=0 m=281/0/0/0/0
    224.0.0.0 240.0.0.0 25.68.1.73 p=0 i=6 t=3 pr=2 a=2213 h=0 m=9256/0/0/0/0
    224.0.0.0 240.0.0.0 169.254.225.200 p=0 i=12 t=3 pr=2 a=378 h=0 m=291/0/0/0/0
    255.255.255.255 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=2 a=4271 h=0 m=331/0/0/0/0
    255.255.255.255 255.255.255.255 10.0.0.17 p=0 i=37 t=3 pr=2 a=4259 h=0 m=281/0/0/0/0
    255.255.255.255 255.255.255.255 25.68.1.73 p=0 i=6 t=3 pr=2 a=2213 h=0 m=9256/0/0/0/0
    255.255.255.255 255.255.255.255 169.254.225.200 p=0 i=12 t=3 pr=2 a=378 h=0 m=291/0/0/0/0
    SYSTEM ADAPTER LIST
    Intel(R) 82579V Gigabit Network Connection
      Index = 37
      GUID = {EEFB3D55-B31A-4562-8806-BC209AC7BA0B}
      IP = 10.0.0.17/255.255.255.0
      MAC = 30:85:a9:b2:0f:c9
      GATEWAY = 10.0.0.1/255.255.255.255
      DHCP SERV = 10.0.0.1/255.255.255.255
      DHCP LEASE OBTAINED = Tue Dec 12 17:26:49 2017
      DHCP LEASE EXPIRES  = Wed Dec 13 17:26:49 2017
      DNS SERV = 10.0.0.1/255.255.255.255
    LogMeIn Hamachi Virtual Ethernet Adapter
      Index = 6
      GUID = {35D2D616-5D13-422C-B8CC-0FC2AF19B0B2}
      IP = 25.68.1.73/255.0.0.0
      MAC = 7a:79:19:44:01:49
      GATEWAY = 25.0.0.1/255.255.255.255
      DHCP SERV = 25.0.0.1/255.255.255.255
      DHCP LEASE OBTAINED = Tue Dec 12 18:00:49 2017
      DHCP LEASE EXPIRES  = Wed Dec 12 18:00:49 2018
      DNS SERV = 
    TAP-Windows Adapter V9
      Index = 12
      GUID = {734D00E0-401D-46F7-B1E7-420E4AB1DF67}
      IP = 169.254.225.200/255.255.0.0
      MAC = 00:ff:73:4d:00:e0
      GATEWAY = 0.0.0.0/255.255.255.255
      DHCP SERV = 0.0.0.0/255.255.255.255
      DHCP LEASE OBTAINED = Tue Dec 12 21:35:28 2017
      DHCP LEASE EXPIRES  = Tue Dec 12 21:35:28 2017
      DNS SERV = 
    The Broadcom 802.11 Network Adapter provides wireless local area networking.
      Index = 7
      GUID = {3DA5EF78-91FA-4975-80D1-6A36270A3755}
      IP = 0.0.0.0/0.0.0.0
      MAC = dc:85:de:57:16:90
      GATEWAY = 0.0.0.0/255.255.255.255
      DHCP SERV = 
      DHCP LEASE OBTAINED = Tue Dec 12 21:35:28 2017
      DHCP LEASE EXPIRES  = Tue Dec 12 21:35:28 2017
      DNS SERV = 
    Microsoft Hosted Network Virtual Adapter
      Index = 14
      GUID = {5CF15D9A-01CB-491A-8ACB-1DBE80F45FAB}
      IP = 0.0.0.0/0.0.0.0
      MAC = dc:85:de:57:16:90
      GATEWAY = 0.0.0.0/255.255.255.255
      DHCP SERV = 
      DHCP LEASE OBTAINED = Tue Dec 12 21:35:28 2017
      DHCP LEASE EXPIRES  = Tue Dec 12 21:35:28 2017
      DNS SERV = 
    Microsoft Wi-Fi Direct Virtual Adapter
      Index = 26
      GUID = {C5DC4ADC-C746-4A0D-98D1-0F604C1DD5F3}
      IP = 0.0.0.0/0.0.0.0
      MAC = de:85:de:57:16:90
      GATEWAY = 0.0.0.0/255.255.255.255
      DHCP SERV = 
      DHCP LEASE OBTAINED = Tue Dec 12 21:35:28 2017
      DHCP LEASE EXPIRES  = Tue Dec 12 21:35:28 2017
      DNS SERV = 
    Tue Dec 12 21:35:28 2017 Initialization Sequence Completed With Errors ( see http://openvpn.net/faq.html#dhcpclientserv )

    I had this working on my old setup just fine. But now it only works first time.

    These are the configs:
    http://prntscr.com/hmnk7h
    http://prntscr.com/hmnkdi
    http://prntscr.com/hmnkmp
    http://prntscr.com/hmnkqe

    So when the openVPN client is just yellow, I see this in pfsense:
    http://prntscr.com/hmnmlb

    So it has established some kind of connection. However, I cannot ping PFsense nor anything else.

    I would be so happy if someone would lead me a way. I read a other post about this saying something about IP's, but I am unsure what should be wrong here….

    Rules on WAN: http://prntscr.com/hmnn8d

    The OpenVPN rule is also added.

    At last, when trying over 4G connection it fails with:
    Tue Dec 12 21:48:12 2017 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
    Tue Dec 12 21:48:12 2017 TLS Error: TLS handshake failed


Log in to reply